CVE-2020-36316

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-36316
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-36316.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-36316
Published
2021-04-07T21:15:15.933Z
Modified
2025-11-20T11:28:15.915834Z
Severity
5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details
In RELIC before 2021-04-03, there is a buffer overflow in PKCS#1 v1.5 signature verification because garbage bytes can be present.
References
Affected packages

Git / github.com/relic-toolkit/relic

Affected ranges

Type: GIT
Repo: https://github.com/relic-toolkit/relic
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

76c9a1fdf19d9e92e566a77376673e522aae9f80
Affected versions

relic-toolkit-0.*

relic-toolkit-0.4.0
relic-toolkit-0.5.0
Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "source": "https://github.com/relic-toolkit/relic/commit/76c9a1fdf19d9e92e566a77376673e522aae9f80",
        "id": "CVE-2020-36316-28f9ddf1",
        "digest": {
            "function_hash": "69657987524564636029535107011666586778",
            "length": 3389.0
        },
        "target": {
            "file": "src/cp/relic_cp_rsa.c",
            "function": "pad_pkcs1"
        },
        "signature_type": "Function",
        "deprecated": false
    },
    {
        "signature_version": "v1",
        "source": "https://github.com/relic-toolkit/relic/commit/76c9a1fdf19d9e92e566a77376673e522aae9f80",
        "id": "CVE-2020-36316-8302b886",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "176999641168755905788768045896499671049",
                "74783240671282190672271361349882345348",
                "176723442613648384338233460164271321788",
                "294432505293137735722343447872286710285",
                "268162463894706134361579155470333805242",
                "321495150006894071367042592449401519075",
                "214031401099938154895451053399372112638",
                "127589012025454628157139890586018595238",
                "243469124743432876710305694229026463292",
                "300746572558732625302601277932745638334",
                "320946319132114463535112759167331362879",
                "205831021259119913990990917088159697522",
                "252014268913482632074802215439059149515",
                "257853496364686983710324393625378027850",
                "189487864189060317300793759766524930847",
                "284105826758362605834986465567384060991",
                "52090692321342227819024359639513987911",
                "114639030673563402080214300261229884896",
                "304263314638063041891213352202038779285",
                "39861785282792548728985415521757370500",
                "244227412663048728943245093838192530967",
                "71728752278568053299011282484131662209",
                "9619257733797698653810254936259396843",
                "104344525641221576370228563130532433218",
                "175562115085806860254177535346311373489",
                "59230706511690997389992675793244113206",
                "227188692718352635339371063222477520952",
                "97329313909089951908811274292453467375",
                "216542705124302817088270099936003884483",
                "7733801303813526248160289426848155002",
                "328449221763997800467760181019065561074",
                "218203412603636142080969475454982524525",
                "270327764936296466011869386410522672030",
                "210444788085239497161001174539367366518",
                "90787549932364645469273279741758775015",
                "300746572558732625302601277932745638334",
                "320946319132114463535112759167331362879",
                "226814070907338472034763529982624929643",
                "54918971806828564430054993294184776992",
                "301992744173651404076094312165253960736",
                "269792656340272394693323755228770874039",
                "170205691752568514629617845835640033399",
                "47355852448220394792452224727004069369",
                "119366608951561752882182264989136692522",
                "198417074384324357349202987187459479249",
                "322362946218057680321036918247693849727",
                "272244035529281744367980305555753917550",
                "213945344902666604977809375415103803599",
                "209167455294509237089794457863428978816",
                "287184312953108992851729164489875176050",
                "327887661744444931927532843055323241534",
                "128124206666282504699246336781833592912",
                "76751374439448529389163149803574416778",
                "200913858063916283820781819286554577899",
                "211127066634986981543305359363527596134",
                "304635309418604517957519510608551965969",
                "7894321107815600658076663106801253226",
                "337937090123560802889907500474146544983",
                "7733801303813526248160289426848155002",
                "328449221763997800467760181019065561074",
                "171889454677858464178211828575625335309",
                "180420887284798950437313727720560900588",
                "296111307738250841379025866185251011725",
                "302264300492902588825628711671847858204",
                "300746572558732625302601277932745638334",
                "320946319132114463535112759167331362879",
                "205298223151676794215434491056808616422",
                "289993707613616582711170844224820509252",
                "26413249731423351078136499886671689705",
                "160201831558384465023785843521504997570",
                "255725900331403741635168924668275238509",
                "72581837716220785971618848568572098849",
                "35315668242731255350762552698598400091",
                "322362946218057680321036918247693849727",
                "272244035529281744367980305555753917550",
                "213945344902666604977809375415103803599",
                "209167455294509237089794457863428978816",
                "105034214953362783408502308416868602234",
                "85913737826192494715055328516857859455",
                "64364746907745766110979586499371220449",
                "188303882651416551832955023848142725998",
                "49856578034049736074515976149517332484",
                "130824167586758441043959508569288646267",
                "66842724665732391190425082872404537653",
                "170253813911264833053462582744276479816",
                "292236652567574037947994252553778083661",
                "120876729164731549809202997316638063779",
                "199394435634674866567242055102985135931",
                "182745005759905572442083273786164856991",
                "24781707224409083331040960408287212522",
                "215283358236241977238920896003512114114",
                "61614050452091119540422645748485453256",
                "306583536893737000029851269848769272318",
                "320150607994940572938272248983290202919",
                "15134180967638900323861718133953687308",
                "296439465565648027090670636487426479888",
                "243469124743432876710305694229026463292",
                "300746572558732625302601277932745638334",
                "320946319132114463535112759167331362879",
                "205298223151676794215434491056808616422",
                "289993707613616582711170844224820509252",
                "26413249731423351078136499886671689705",
                "160201831558384465023785843521504997570",
                "255725900331403741635168924668275238509",
                "72581837716220785971618848568572098849",
                "35315668242731255350762552698598400091",
                "322362946218057680321036918247693849727",
                "272244035529281744367980305555753917550",
                "213945344902666604977809375415103803599",
                "209167455294509237089794457863428978816",
                "105034214953362783408502308416868602234",
                "85913737826192494715055328516857859455",
                "64364746907745766110979586499371220449",
                "261701341931677118492060298693384616600",
                "117890656568826634489406508483546722172",
                "168376136586940594098937790231239496014",
                "238650413656995295252595192573459174793",
                "10750340649640760076361403465158419713",
                "165012024259001614023802185594326443919",
                "121492572671130122784650471332867952605",
                "70490273072808449404062268570703512498",
                "269209795681707323759010004915333506599",
                "207286829737887128814527795832503072661",
                "109637835553497115588404320925232073165",
                "124468545309001644128594094944353125075",
                "299302300648422506657645048957142279467",
                "280144093763899184478457595848531999010",
                "152680059064323343727092993452419090317",
                "206083676834359748109628297345258602678",
                "166667703683971233157485615823154502229",
                "210444788085239497161001174539367366518",
                "90787549932364645469273279741758775015",
                "300746572558732625302601277932745638334",
                "320946319132114463535112759167331362879",
                "25269627289241787621911950337765394219",
                "234937050599370577969708292249572046487",
                "330413026544391919887176214065357229329",
                "188251850176814347514767874960831439561",
                "65838279688830444992923079735754019812",
                "250878361377078107732954500086938751576",
                "131853818338893323714798287105812091603",
                "298806962622650548004846369877018418791",
                "317102643014195284738754880516459938848",
                "248759338387584458723015072947917441648",
                "14287488217986540917784809502541996257",
                "312523487972394540757881928640327280811",
                "201550956021212177097337170644425459233",
                "144883433740768842083807522848713276655",
                "138859558927786835353471320257559087327",
                "23487759313848855935911302672309400875",
                "102043244297400863801477150328521982280",
                "287163650037599372478469647268958949234",
                "297768075006189979248577915518775610358",
                "99622463887883867008085867385275345428",
                "324127030554266084438738243156390887352",
                "109075084179461499180415098764717190865",
                "86421167764985328966239088122101460059",
                "307418838073183411310024636374863059255",
                "310818764764392458535163758673841261334",
                "212840104574296776041054685751549932599",
                "219738587724857660944345609151156113900",
                "312071248794077163008262197777972682404",
                "325166293912599666864549561987208489529",
                "160778735977017232218986016224340348518",
                "22891656523126685584826805503202320033",
                "13906232039482189682070409789838485879",
                "215668190286178593346030138564727223149",
                "122646207475538770042261304263905049518",
                "139620722898740386962990887842784614046",
                "168727790042711549721944247229085790175",
                "210134779933493444123736557387374184984",
                "101715081394689386340354014849807365822",
                "332492219159996433166634495415695110427",
                "108016346379469167819287117233246947614",
                "125607810941762582248483891676375339240",
                "316826136710650014853972413978324473105",
                "275430958428061754343176780872041303912",
                "61828269043226109301554509474616012862",
                "25644675370638697584473903991887263036",
                "309259360367660227962573254798451602948",
                "180049546802950243922820528270634788775",
                "273637792419397168771378512923150504016",
                "192093679031261623440745939823396907749",
                "254084815848064005102609712688000594265",
                "78102652975097323121998935950371673223",
                "329226381178319742283366155930733701732",
                "256589231376202743502277338265420444734",
                "13246191208987843743498873102249772699",
                "265595454929991588064977282964044299720",
                "226795725697873164175353547701968536860",
                "192885718503205617390512316928349408892",
                "296627417928191517384351695197789373369",
                "105579732344820945460523058662775526417",
                "86340119241204720031038070763317896204"
            ]
        },
        "target": {
            "file": "src/cp/relic_cp_rsa.c"
        },
        "signature_type": "Line",
        "deprecated": false
    },
    {
        "signature_version": "v1",
        "source": "https://github.com/relic-toolkit/relic/commit/76c9a1fdf19d9e92e566a77376673e522aae9f80",
        "id": "CVE-2020-36316-8fd68601",
        "digest": {
            "function_hash": "51787330787286231467876970354556657624",
            "length": 4151.0
        },
        "target": {
            "file": "src/cp/relic_cp_rsa.c",
            "function": "pad_pkcs2"
        },
        "signature_type": "Function",
        "deprecated": false
    },
    {
        "signature_version": "v1",
        "source": "https://github.com/relic-toolkit/relic/commit/76c9a1fdf19d9e92e566a77376673e522aae9f80",
        "id": "CVE-2020-36316-91dbdac7",
        "digest": {
            "function_hash": "321890480262879610976218098852809443603",
            "length": 909.0
        },
        "target": {
            "file": "src/cp/relic_cp_rsa.c",
            "function": "pad_basic"
        },
        "signature_type": "Function",
        "deprecated": false
    }
]